Update Session Validation Cache for Unknown 404 Sessions while Crowd SSO is integrated with Jira

XMLWordPrintable

    • Type: Bug
    • Resolution: Fixed
    • Priority: Low
    • 10.3.12
    • Affects Version/s: 8.20.30, 9.4.30, 9.12.10, 9.12.25, 10.3.4, 10.7.2
    • Component/s: User Management - Others
    • None
    • 8.2
    • 5
    • Severity 3 - Minor
    • 40

      Issue Summary

      Steps to Reproduce

      1. Install Jira and Crowd
      2. Configure Jira as an application on Crowd and add users
      3. Configure Jira to use Crowd's Authenticator to enable SSO and configure SSOSeraphAuthenticator in JIRA/atlassian-jira/WEB-INF/classes/seraph-config.xml to use Crowd as centralized session manager.

       https://confluence.atlassian.com/crowd/integrating-crowd-with-atlassian-jira-192625.html

      1. Login to Jira with a Crowd user, close the tab and wait for Jira and Crowd session timeout.
      2. Browse the page again, you will be redirected to Jira login page
        1. Jira will receive the Crowd session cookie from end-user browser and send session validation request to Crowd. Upon receiving unknown session 404 Jira will redirect user to login page.

      Fast test parameters

      • Set session timeout to 2 minutes on Jira via editing <jira-install>/conf/web.xml 
        • <session-timeout>2</session-timeout>
      • Set <jira-install>/atlassian-jira/WEB-INF/classes/crowd.properties file with 0 session validation interval
        • session.validationinterval              0
      • Set Crowd Session duration to 3 minutes on Crowd Administration > Session configuration

      Expected Results

      Jira should not check session validation for each HTTP request in the login page after getting 404 Unknown Session from Crowd

      Actual Results

      Jira makes multiple (5-6) HTTP REST API Calls as Session Validation request to Crowd for every HTTP request, totalling a big number for a single login page.

      The below logs are from Crowd DC access logs that showing requests coming from Jira for the same timed out session.

      [27/Jun/2025:14:09:03 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-20 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:03 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-13 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:03 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-10 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:03 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-17 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:03 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-2 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:03 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-14 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:03 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-16 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:03 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-9 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:10 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-7 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:10 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-22 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:10 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-24 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:10 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-25 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:10 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-4 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:10 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-11 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:10 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-1 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:10 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-18 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:10 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-3 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:10 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-19 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:10 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-18 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:10 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-8 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:10 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-21 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:10 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-23 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:10 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-12 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:10 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-15 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:10 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-6 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:10 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-5 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:10 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-20 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:10 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-13 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:10 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-10 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:10 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-17 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:11 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-2 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:11 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-14 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:11 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-16 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:15 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-9 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:15 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-7 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:15 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-22 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:15 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-24 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:15 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-25 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:15 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-4 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:15 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-11 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:15 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-1 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:15 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-3 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:15 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-19 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:15 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-18 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:15 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-8 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:15 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-21 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:15 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-23 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:15 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-12 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:15 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-15 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:16 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-6 - linux-104357.prod.atl-cd.net
[27/Jun/2025:14:09:16 +0000] Apache-HttpClient/4.5.14 (Java/17.0.15) 172.50.0.2 POST POST /crowd/rest/usermanagement/1/session/bRMy_Cnd6qAA0gxIw1_tjwAAAAAAAoABY3Jvd2R1c2VyMDE HTTP/1.1 147 404 http-nio-8095-exec-5 - linux-104357.prod.atl-cd.net

      Workaround

      This is intended as Jira is configured to check session validation from remote Crowd.

      Currently there is no known workaround for this behavior. A workaround will be added here when available

            Assignee:
            Anton Miniailo
            Reporter:
            Alper Firengiz (Inactive)
            Votes:
            9 Vote for this issue
            Watchers:
            12 Start watching this issue

              Created:
              Updated:
              Resolved: